Warm tip: This article is reproduced from serverfault.com, please click
maven mule mulesoft

Mule Maven Deployment Failure 401-Unauthorized

发布于 2020-12-07 19:10:51

Trying to deploy to our AWS VM Instances (havng mule runtimes 3.8.5). Our Jenkins Job has triggered the deployment and getting 401 Unauthorized. Verified the creds are working fine and no special characters. Not sure what else could be wrong. Can someone suggest me from below logs.

One other doubt is the does the aws region causes an issue ? ( the instances running on west but on jenkins build job its showing east)

 Failed: 401 Unauthorized: Unauthorized
[ERROR] Failed to deploy XXXX: Failed to deploy application XXXX
org.mule.tools.maven.plugin.mule.DeploymentException: Failed to deploy application XXX
    at org.mule.tools.maven.plugin.mule.arm.ArmDeployer.deploy(ArmDeployer.java:55)
    at org.mule.tools.maven.plugin.mule.DeployMojo.deployWithDeployer(DeployMojo.java:194)
    at org.mule.tools.maven.plugin.mule.DeployMojo.arm(DeployMojo.java:177)
    at org.mule.tools.maven.plugin.mule.DeployMojo.doExecute(DeployMojo.java:154)
    at org.mule.tools.maven.plugin.mule.AbstractMuleMojo.execute(AbstractMuleMojo.java:214)
    at org.apache.maven.plugin.DefaultBuildPluginManager.executeMojo(DefaultBuildPluginManager.java:134)
    at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:208)
    at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:154)
    at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:146)
    at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:117)
    at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:81)
    at org.apache.maven.lifecycle.internal.builder.singlethreaded.SingleThreadedBuilder.build(SingleThreadedBuilder.java:51)
    at org.apache.maven.lifecycle.internal.LifecycleStarter.execute(LifecycleStarter.java:128)
    at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:309)
    at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:194)
    at org.apache.maven.DefaultMaven.execute(DefaultMaven.java:107)
    at org.apache.maven.cli.MavenCli.execute(MavenCli.java:993)
    at org.apache.maven.cli.MavenCli.doMain(MavenCli.java:345)
    at org.apache.maven.cli.MavenCli.main(MavenCli.java:191)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke(Method.java:498)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced(Launcher.java:289)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launch(Launcher.java:229)
    at org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode(Launcher.java:415)
    at org.codehaus.plexus.classworlds.launcher.Launcher.main(Launcher.java:356)
Caused by: org.mule.tools.maven.plugin.mule.ApiException: 401 Unauthorized: Unauthorized
    at org.mule.tools.maven.plugin.mule.AbstractMuleApi.validateStatusSuccess(AbstractMuleApi.java:78)
    at org.mule.tools.maven.plugin.mule.AbstractMuleApi.getBearerToken(AbstractMuleApi.java:69)
    at org.mule.tools.maven.plugin.mule.AbstractMuleApi.init(AbstractMuleApi.java:60)
    at org.mule.tools.maven.plugin.mule.arm.ArmDeployer.deploy(ArmDeployer.java:38)
Questioner
Learner
Viewed
0
分享
JRichardsz 2020-12-08 06:16:16

Quick answer

401 means : The HTTP 401 Unauthorized client error status response code indicates that the request has not been applied because it lacks valid authentication credentials for the target resource.

So, possible causes are:

  • incorrect credentials
  • jenkins incorrect credentials injection or jenkins bug
  • mule-maven-plugin:2.2.1 bug

Validate credentials

Jenkins or mule-maven-plugin bug are not common. Human error is very common.

In order to validate who is causing the error?, I advice you validate your credentials directly to Anypoint http url

Anypoint login url

Reviewing the plugin official source code v2.2.1 related to your stacktrace ArmDeployer.deploy(ArmDeployer.java:38) :

https://github.com/mulesoft/mule-maven-plugin/tree/v2.2.1

And its classes (in this order):

I got the base url:

ArmApi(null, "https://anypoint.mulesoft.com", USERNAME, PASSWORD, ENVIRONMENT, "", false);

And with this url, I found this authentication request snippet:

curl -H "Content-Type: application/json" -X POST -d '{"username":"jane","password":"doe"}' https://anypoint.mulesoft.com/accounts/login

Also in this web , another ways to authentication are showed:

  • form params
  • bearer(used for mule-maven-plugin:2.2.1)

Source: https://help.mulesoft.com/s/article/How-to-generate-your-Authorization-Bearer-token-for-Anypoint-Platform

Direct authentication: success

If https://anypoint.mulesoft.com/accounts/login returns you a successful answer, will indicate that there are some error at credentials manager in your jenkins or just an error in the human jenkins admin.

Direct authentication: failure

If https://anypoint.mulesoft.com/accounts/login returns you an error answer like your 401 Unauthorized, will indicate that mule-maven-plugin:2.2.1 and jenkins are good, and your credentials are wrong!!! or maybe they expired.

Anyway just to try, reset the credentials or ask for a new user/password.

Learner 2020-12-07 23:47:41

thank you very much for sharing this. I did tried with creds and its giving unauthorized error via curl. But we are using Okta for sign-in to mulesoft. so i guess we should use bearer method (first get saml response and then get token). I got the saml response but not sure how to proceed after that

JRichardsz 2020-12-08 16:03:06

I saw the Bearer token in some classes of mule-maven-plugin v2.2.1, so I think you can review if it is possible to use bearer instead user/password. Also you could try with a more recent version of this plugin. In another way, I think okta is for interactive login for human users. But for non-interactive users (background process like jenkins) I think mule-maven-plugin requires user/password or some kind of long lived api-key

Learner 2020-12-08 19:56:50

created a new account in anypoint platform without MFA( no single sig on ) and used the creds in settings.xml , It started working.

JRichardsz 2020-12-09 03:52:01

Glad I helped find the problem.

热门帖子

1
出一些有意思的域名-明盘
2
为什么我的 TG 始终收不到提醒通知?
3
求助一个排查了半年没解决的 MySQL order by 子句导致索引失效的问题, 500 多万条记录的小表要查快两分钟
4
Android 开发方向:传统 View 开发 or 拥抱 Jetpack Compose
5
浙江 ISP 会屏蔽 Wireguard UDP 端口
6
高级 Java 岗位一定需要有管理经验吗
7
兄弟们,老是倒在大厂二面的怎么办?
8
最近很多小伙伴弄港卡,分享一下个人开卡经历
9
vercel 免费版 3 个指标都超了,好像我的网站已经获得了基础流量。还好套了 cloudflare 不然流量也超了。
10
最近换了真我手机,发现这系统连应用的数据都无法备份

热门github

1
Implementation of paper - YOLOv9: Learning What You Want to Learn Using Programmable Gradient Information
2
A Windows and Office activator using HWID / Ohook / KMS38 / Online KMS activation methods, with a focus on open-source code and fewer antivirus detections.
3
Get up and running with Llama 2, Mistral, Gemma, and other large language models.
4
该项目可以让你通过订阅的方式使用Cloudflare WARP+,自动获取流量。This project enables you to use Cloudflare WARP+ through subscription, automatically acquiring traffic.
5
Multi functional app to find duplicates, empty folders, similar images etc.
6
Xray panel supporting multi-protocol multi-user expire day & traffic & ip limit (Vmess & Vless & Trojan & ShadowSocks & Wireguard)
7
The Free Software Media System
8
lightweight, standalone C++ inference engine for Google's Gemma models.
9
📚 Freely available programming books
10
A collective list of free APIs
11
1️⃣🐝🏎️ The One Billion Row Challenge -- A fun exploration of how quickly 1B rows from a text file can be aggregated with Java
12
🎓 Path to a free self-taught education in Computer Science!
13
Curso para aprender el lenguaje de programación Python desde cero y para principiantes. 75 clases, 37 horas en vídeo, código, proyectos y grupo de chat. Fundamentos, frontend, backend, testing, IA...
14
This repository contains System Design resources which are useful while preparing for interviews and learning Distributed Systems
15
Mamba is a new state space model architecture showing promising performance on information-dense data such as language modeling, where previous subquadratic models fall short of Transformers. It is based on the line of progress on structured state space models, with an efficient hardware-aware design and implementation in the spirit of FlashAttention.